Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
So I just recently setup a Cisco 5506-x with firepower services, but it changed my CLI once the console was enabled. Am I able to change back to the original CLI from this?So it went from ASA#to >
Hi Cisco Community -So I'm getting better at ASA's, but still have some items to work through. I have a customer who has requested an ACL policy to allow a few servers with different sub-interfaces to communicate with each other over specified ports....
I have somewhat a unique customer configuration I'm troubleshooting. My customer has a C240 and C230 UCS storage servers directly connected to each other over an Intel ethernet converged network adapter X540-T2. So they have a Cat6 crossover connecte...
Hello,I have a request from a customer to allow a server on the inside network (192.168.1.203) to the "learning network" 10.10.10.0/24 over a specific set of ports. Here is the current ACL to allow from DMZ to Inside networkaccess-list learning_acces...
I have a 2911 that has a few existing IPSec tunnels and I'm looking to add one in except the encryptio is a little different. I will be using AES vs DES like the other transform sets. - This what I have configured except I still don't see the tunnel ...
Thank you Risseth - I had it originally applied as out vs in... Changed the direction as most should be "in" when I place myself as the ASA. This resolved my issue and associated it with the correct interface. Thanks!
Well still no luck. Transfer replication rates are still in the low 74mbps. Windows OS: Windows Server 2012 Enterprise R2.RAM 256GB, and CPU is Quadcore 3.2 MHZ. We use a replication software called SIOS, and I've use LAN speed test, and Windows perf...
I believe the issue was they are using a Cat6 crossover with only 2 pairs crossed. This would result in 10/100mbps speed. I had them purchase a straight-through Cat6a cable in hopes the MDI/MDX would allow the connection to pass 10GB. Intel® Etherne...
Ended up having to place a no nat rule -access-list NO_NAT_LEARNING extended permit ip 192.168.1.0 255.255.255.0 10.10.10.0 255.255.255.0nat (learning) 0 access-list NO_NAT_LEARNING
I ran packet tracer for the destined port and received the following -FW1# packet-tracer input inside tcp 192.168.1.213 7751 10.10.10.34 7751Phase: 1Type: ACCESS-LISTSubtype:Result: ALLOWConfig:Implicit RuleAdditional Information:MAC Access listPhase...
